-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

To ensure the image has not been corrupted in transmit or tampered with,
perform the following two steps to cryptographically verify image integrity:

1. Verify the authenticity of this file by checking that it is signed with our
   GPG release key:

    $ curl https://raw.githubusercontent.com/turnkeylinux/common/master/keys/tkl-buster-images.asc | gpg --import
    $ gpg --list-keys --with-fingerprint release-buster-images@turnkeylinux.org
      pub   rsa4096 2020-02-05 [SC] [expires: 2040-01-31]
            A8B2 EF42 8781 9B03 D351  6CCA 7623 1C20 425E 9772
      uid           [ unknown] TurnKey GNU/Linux Buster Images (GPG signing key for TurnKey Linux Buster Images) <release-buster-images@turnkeylinux.org>
      sub   rsa4096 2020-02-05 [S] [expires: 2040-01-31]
      
    $ gpg --verify turnkey-sahana-eden-16.0-buster-amd64.iso.hash
      gpg: Signature made using RSA key ID A8B2EF4287819B03D3516CCA76231C20425E9772
      gpg: Good signature from "0"

2. Recalculate the image hash and make sure it matches your choice of hash below.

    $ sha256sum turnkey-sahana-eden-16.0-buster-amd64.iso
      14b693ac90c1e5e9d3253d70e6695c62e6f2fc7b93327d010b5f05b083400af3  turnkey-sahana-eden-16.0-buster-amd64.iso

    $ sha512sum turnkey-sahana-eden-16.0-buster-amd64.iso
      4d44bb5b609aca7930a9cd258dd19215499fdbba8e3753eb0d789fa95b17041950ca977c10dcaa2584d087d1f105aeb1268ba7269f07230e75e4611e544c9e50  turnkey-sahana-eden-16.0-buster-amd64.iso

   Note, you can compare hashes automatically::

    $ sha256sum -c turnkey-sahana-eden-16.0-buster-amd64.iso.hash
      turnkey-sahana-eden-16.0-buster-amd64.iso: OK

    $ sha512sum -c turnkey-sahana-eden-16.0-buster-amd64.iso.hash
      turnkey-sahana-eden-16.0-buster-amd64.iso: OK

    Final note, when checking SHAs automatically, please ignore warning noting that some lines are improperly formatted.

-----BEGIN PGP SIGNATURE-----
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=s97a
-----END PGP SIGNATURE-----